npm - auramaxx - Versions diffs - 0.0.1 - Mend

auramaxx 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (418) hide show

package/LICENSE +26 -0
package/README.md +77 -0
package/apps/desktop-electron/main.js +428 -0
package/bin/auramaxx.js +1063 -0
package/docs/ADAPTERS.md +466 -0
package/docs/AGENT_SETUP.md +159 -0
package/docs/API.md +127 -0
package/docs/APPS.md +199 -0
package/docs/ARCHITECTURE.md +235 -0
package/docs/AUTH.md +318 -0
package/docs/BEST-PRACTICES.md +82 -0
package/docs/CLI.md +141 -0
package/docs/DESKTOP_ELECTRON.md +26 -0
package/docs/DEVELOPING-APPS.md +453 -0
package/docs/MCP.md +122 -0
package/docs/PACKAGING_POLICY.md +19 -0
package/docs/PERMISSION.md +137 -0
package/docs/PROTOCOL.md +142 -0
package/docs/README.md +50 -0
package/docs/SKILLS.md +132 -0
package/docs/TROUBLESHOOTING.md +376 -0
package/docs/WORKSPACE.md +673 -0
package/docs/agent-auth.md +14 -0
package/docs/api/authentication.md +79 -0
package/docs/api/secrets/api-keys.md +28 -0
package/docs/api/secrets/credentials.md +80 -0
package/docs/api/secrets/sharing.md +48 -0
package/docs/api/system.md +41 -0
package/docs/api/wallets/apps-strategies.md +66 -0
package/docs/api/wallets/core.md +46 -0
package/docs/api/wallets/data-portfolio.md +42 -0
package/docs/aura-file.md +48 -0
package/docs/core-concepts/FEATURES.md +114 -0
package/docs/credentials.md +120 -0
package/docs/external/HOW_TO_AURAMAXX/GETTING_SECRETS.md +33 -0
package/docs/external/HOW_TO_AURAMAXX/README.md +45 -0
package/docs/external/getting-started.md +10 -0
package/docs/external/overview.md +19 -0
package/docs/external/persona-paths.md +7 -0
package/docs/external/share-secret.md +76 -0
package/docs/external/why-aura.md +7 -0
package/docs/security.md +227 -0
package/docs/templates/RELEASE_NOTES_TEMPLATE.md +22 -0
package/docs/wallet/AI.md +508 -0
package/docs/wallet/DEVELOPING-STRATEGIES.md +713 -0
package/docs/wallet/README.md +47 -0
package/docs/wallet/STRATEGY.md +89 -0
package/next.config.ts +28 -0
package/package.json +167 -0
package/postcss.config.mjs +8 -0
package/prisma/migrations/20260214170000_baseline/migration.sql +511 -0
package/prisma/migrations/20260216214537_add_passkey_model/migration.sql +18 -0
package/prisma/migrations/20260217150500_add_credential_access_audit/migration.sql +31 -0
package/prisma/migrations/20260222090000_update_admin_ttl_default/migration.sql +10 -0
package/prisma/migrations/migration_lock.toml +3 -0
package/prisma/schema.prisma +447 -0
package/public/logo.webp +0 -0
package/scripts/add-app.js +245 -0
package/server/abi/SwapHelper.json +438 -0
package/server/cli/approval.ts +447 -0
package/server/cli/commands/actions.ts +474 -0
package/server/cli/commands/api.ts +220 -0
package/server/cli/commands/apikey.ts +277 -0
package/server/cli/commands/app.ts +204 -0
package/server/cli/commands/auth.ts +464 -0
package/server/cli/commands/cron.ts +24 -0
package/server/cli/commands/diary.ts +274 -0
package/server/cli/commands/doctor.ts +1247 -0
package/server/cli/commands/env.ts +476 -0
package/server/cli/commands/experimental.ts +69 -0
package/server/cli/commands/init.ts +798 -0
package/server/cli/commands/lock.ts +157 -0
package/server/cli/commands/mcp.ts +285 -0
package/server/cli/commands/quickhack.ts +86 -0
package/server/cli/commands/release-check.ts +231 -0
package/server/cli/commands/restore.ts +314 -0
package/server/cli/commands/service.ts +320 -0
package/server/cli/commands/shell-hook.ts +512 -0
package/server/cli/commands/skill.ts +216 -0
package/server/cli/commands/start.ts +139 -0
package/server/cli/commands/status.ts +59 -0
package/server/cli/commands/stop.ts +36 -0
package/server/cli/commands/token.ts +180 -0
package/server/cli/commands/unlock.ts +50 -0
package/server/cli/commands/vault.ts +1323 -0
package/server/cli/commands/wallet.ts +209 -0
package/server/cli/index.ts +280 -0
package/server/cli/lib/approval-poll.ts +94 -0
package/server/cli/lib/aura-parser.ts +64 -0
package/server/cli/lib/credential-create.ts +74 -0
package/server/cli/lib/credential-resolve.ts +280 -0
package/server/cli/lib/dotenv-migrate.ts +116 -0
package/server/cli/lib/dotenv-parser.ts +146 -0
package/server/cli/lib/escalation.ts +57 -0
package/server/cli/lib/http.ts +91 -0
package/server/cli/lib/init-steps.ts +76 -0
package/server/cli/lib/local-agent-trust.ts +45 -0
package/server/cli/lib/lock-unlock-helper.ts +71 -0
package/server/cli/lib/process.ts +162 -0
package/server/cli/lib/prompt.ts +294 -0
package/server/cli/lib/theme.ts +240 -0
package/server/cli/socket.ts +579 -0
package/server/cli/transport-client.ts +50 -0
package/server/cron/index.ts +137 -0
package/server/cron/job.ts +31 -0
package/server/cron/jobs/balance-sync.ts +436 -0
package/server/cron/jobs/incoming-scan.ts +506 -0
package/server/cron/jobs/native-price.ts +70 -0
package/server/cron/jobs/orphan-cleanup.ts +40 -0
package/server/cron/jobs/strategy-runner.ts +175 -0
package/server/cron/scheduler.ts +125 -0
package/server/index.ts +420 -0
package/server/lib/adapters/factory.ts +119 -0
package/server/lib/adapters/index.ts +19 -0
package/server/lib/adapters/router.ts +297 -0
package/server/lib/adapters/telegram.ts +645 -0
package/server/lib/adapters/types.ts +89 -0
package/server/lib/adapters/webhook.ts +95 -0
package/server/lib/address.ts +49 -0
package/server/lib/agent-auth/contracts.ts +1194 -0
package/server/lib/agent-profiles.ts +419 -0
package/server/lib/ai.ts +285 -0
package/server/lib/api-registry/contracts.ts +86 -0
package/server/lib/api-registry/validation.ts +172 -0
package/server/lib/apikey-migration.ts +258 -0
package/server/lib/app-installer.ts +505 -0
package/server/lib/app-tokens.ts +247 -0
package/server/lib/approval-link.ts +27 -0
package/server/lib/auth.ts +314 -0
package/server/lib/auto-execute.ts +160 -0
package/server/lib/batch.ts +242 -0
package/server/lib/cold.ts +1048 -0
package/server/lib/config.ts +408 -0
package/server/lib/credential-access-audit.ts +85 -0
package/server/lib/credential-access-policy.ts +111 -0
package/server/lib/credential-health.ts +343 -0
package/server/lib/credential-import.ts +608 -0
package/server/lib/credential-scope.ts +102 -0
package/server/lib/credential-shares.ts +190 -0
package/server/lib/credential-transport.ts +533 -0
package/server/lib/credential-vault.ts +77 -0
package/server/lib/credentials.ts +422 -0
package/server/lib/crypto.ts +8 -0
package/server/lib/db.ts +58 -0
package/server/lib/defaults.ts +386 -0
package/server/lib/dex/index.ts +80 -0
package/server/lib/dex/relay.ts +235 -0
package/server/lib/dex/types.ts +59 -0
package/server/lib/dex/uniswap.ts +370 -0
package/server/lib/diary.ts +34 -0
package/server/lib/dont-ask-again-policy.ts +41 -0
package/server/lib/e2e-agent/artifacts.ts +36 -0
package/server/lib/e2e-agent/contracts.ts +112 -0
package/server/lib/e2e-agent/validation.ts +135 -0
package/server/lib/encrypt.ts +114 -0
package/server/lib/error.ts +20 -0
package/server/lib/events.ts +217 -0
package/server/lib/feature-flags.ts +93 -0
package/server/lib/hot.ts +357 -0
package/server/lib/human-action-summary.ts +80 -0
package/server/lib/key-fingerprint.ts +28 -0
package/server/lib/logger.ts +340 -0
package/server/lib/network.ts +137 -0
package/server/lib/notifications.ts +230 -0
package/server/lib/oauth2-refresh.ts +241 -0
package/server/lib/oursecret.ts +71 -0
package/server/lib/passkey-credential.ts +360 -0
package/server/lib/passkey.ts +68 -0
package/server/lib/permissions.ts +299 -0
package/server/lib/pino.ts +24 -0
package/server/lib/policy-preview.ts +138 -0
package/server/lib/price.ts +338 -0
package/server/lib/prices.ts +34 -0
package/server/lib/project-scope.ts +297 -0
package/server/lib/resolve-action.ts +328 -0
package/server/lib/resolve.ts +36 -0
package/server/lib/secret-gist-share.ts +296 -0
package/server/lib/sessions.ts +634 -0
package/server/lib/socket-path.ts +56 -0
package/server/lib/solana/connection.ts +26 -0
package/server/lib/solana/jupiter.ts +128 -0
package/server/lib/solana/transfer.ts +108 -0
package/server/lib/solana/wallet.ts +136 -0
package/server/lib/strategy/emits.ts +21 -0
package/server/lib/strategy/engine.ts +1305 -0
package/server/lib/strategy/executor.ts +115 -0
package/server/lib/strategy/hook-context.ts +159 -0
package/server/lib/strategy/hooks.ts +990 -0
package/server/lib/strategy/index.ts +28 -0
package/server/lib/strategy/installer.ts +305 -0
package/server/lib/strategy/loader.ts +256 -0
package/server/lib/strategy/message.ts +237 -0
package/server/lib/strategy/repository.ts +218 -0
package/server/lib/strategy/session-logger.ts +693 -0
package/server/lib/strategy/sources.ts +288 -0
package/server/lib/strategy/state.ts +189 -0
package/server/lib/strategy/templates.ts +403 -0
package/server/lib/strategy/tick.ts +404 -0
package/server/lib/strategy/types.ts +230 -0
package/server/lib/swap.ts +3 -0
package/server/lib/temp.ts +86 -0
package/server/lib/token-metadata.ts +86 -0
package/server/lib/token-safety.ts +200 -0
package/server/lib/token-search.ts +444 -0
package/server/lib/totp.ts +194 -0
package/server/lib/transactions.ts +123 -0
package/server/lib/transport.ts +84 -0
package/server/lib/txhistory/decoder.ts +262 -0
package/server/lib/txhistory/enricher.ts +652 -0
package/server/lib/txhistory/index.ts +391 -0
package/server/lib/txhistory/signatures.ts +59 -0
package/server/lib/update-check.ts +35 -0
package/server/lib/verified-summary.ts +414 -0
package/server/lib/view-registry.ts +80 -0
package/server/mcp/profile-policy.ts +30 -0
package/server/mcp/server.ts +1589 -0
package/server/mcp/tools.ts +276 -0
package/server/middleware/auth.ts +119 -0
package/server/middleware/requestLogger.ts +84 -0
package/server/routes/actions.ts +539 -0
package/server/routes/adapters.ts +711 -0
package/server/routes/addressbook.ts +113 -0
package/server/routes/ai.ts +34 -0
package/server/routes/apikeys.ts +343 -0
package/server/routes/apps.ts +601 -0
package/server/routes/auth.ts +406 -0
package/server/routes/backup.ts +404 -0
package/server/routes/batch.ts +270 -0
package/server/routes/bookmarks.ts +162 -0
package/server/routes/credential-shares.ts +380 -0
package/server/routes/credential-vaults.ts +159 -0
package/server/routes/credentials.ts +1782 -0
package/server/routes/dashboard.ts +97 -0
package/server/routes/defaults.ts +124 -0
package/server/routes/flags.ts +11 -0
package/server/routes/fund.ts +225 -0
package/server/routes/heartbeat.ts +375 -0
package/server/routes/import.ts +364 -0
package/server/routes/launch.ts +665 -0
package/server/routes/lock.ts +54 -0
package/server/routes/logs.ts +68 -0
package/server/routes/nuke.ts +111 -0
package/server/routes/passkey-credentials.ts +99 -0
package/server/routes/passkey.ts +366 -0
package/server/routes/portfolio.ts +217 -0
package/server/routes/price.ts +63 -0
package/server/routes/resolve.ts +31 -0
package/server/routes/security.ts +45 -0
package/server/routes/send-evm.ts +241 -0
package/server/routes/send-solana.ts +281 -0
package/server/routes/send.ts +178 -0
package/server/routes/setup.ts +210 -0
package/server/routes/strategy.ts +894 -0
package/server/routes/swap-evm.ts +352 -0
package/server/routes/swap-solana.ts +176 -0
package/server/routes/swap.ts +356 -0
package/server/routes/token.ts +247 -0
package/server/routes/unlock.ts +467 -0
package/server/routes/views.ts +41 -0
package/server/routes/wallet-assets.ts +361 -0
package/server/routes/wallet-transactions.ts +515 -0
package/server/routes/wallet.ts +709 -0
package/server/types.ts +146 -0
package/shared/credential-field-schema.ts +248 -0
package/skills/auramaxx/HEARTBEAT.md +78 -0
package/skills/auramaxx/SKILL.md +745 -0
package/skills/auramaxx/docs/AGENT_SETUP.md +155 -0
package/skills/auramaxx/docs/API.md +127 -0
package/skills/auramaxx/docs/AUTH.md +318 -0
package/skills/auramaxx/docs/CLI.md +130 -0
package/skills/auramaxx/docs/MCP.md +122 -0
package/skills/auramaxx/docs/TROUBLESHOOTING.md +357 -0
package/skills/auramaxx/docs/WORKSPACE.md +673 -0
package/skills/auramaxx/docs/security.md +227 -0
package/skills/task-lifecycle/SKILL.md +378 -0
package/src/app/api/[...doc]/page.tsx +36 -0
package/src/app/api/agent-requests/route.ts +30 -0
package/src/app/api/apps/install/route.ts +132 -0
package/src/app/api/apps/manifests/route.ts +16 -0
package/src/app/api/apps/static/[...path]/route.ts +57 -0
package/src/app/api/docs/plain/route.ts +74 -0
package/src/app/api/events/route.ts +92 -0
package/src/app/api/page.tsx +290 -0
package/src/app/api/workspace/[id]/apps/[wid]/route.ts +119 -0
package/src/app/api/workspace/[id]/apps/route.ts +81 -0
package/src/app/api/workspace/[id]/export/route.ts +67 -0
package/src/app/api/workspace/[id]/route.ts +168 -0
package/src/app/api/workspace/auth.ts +40 -0
package/src/app/api/workspace/config/route.ts +121 -0
package/src/app/api/workspace/import/route.ts +127 -0
package/src/app/api/workspace/route.ts +116 -0
package/src/app/app-legacy-do-not-use/page.tsx +2245 -0
package/src/app/apple-icon.png +0 -0
package/src/app/approve/[actionId]/page.tsx +409 -0
package/src/app/docs/DocsPageContent.tsx +269 -0
package/src/app/docs/[...doc]/page.tsx +41 -0
package/src/app/docs/page.tsx +38 -0
package/src/app/favicon.ico +0 -0
package/src/app/globals.css +819 -0
package/src/app/health/page.tsx +5 -0
package/src/app/hello/page.tsx +102 -0
package/src/app/icon.png +0 -0
package/src/app/layout.tsx +39 -0
package/src/app/page.tsx +1964 -0
package/src/app/privacy/page.tsx +63 -0
package/src/app/providers.tsx +87 -0
package/src/app/share/[token]/page.tsx +295 -0
package/src/app/terms/page.tsx +80 -0
package/src/components/ChainSelector.tsx +44 -0
package/src/components/HumanActionBar.tsx +697 -0
package/src/components/NotificationDrawer.tsx +387 -0
package/src/components/PasskeyEnrollmentPrompt.tsx +235 -0
package/src/components/apps/AgentKeysApp.tsx +490 -0
package/src/components/apps/App.tsx +153 -0
package/src/components/apps/AppGrid.tsx +15 -0
package/src/components/apps/DetailedAddressDrawer.tsx +325 -0
package/src/components/apps/DraggableApp.tsx +562 -0
package/src/components/apps/IFrameApp.tsx +73 -0
package/src/components/apps/LogsApp.tsx +360 -0
package/src/components/apps/SendApp.tsx +394 -0
package/src/components/apps/SetupWizardApp.tsx +1004 -0
package/src/components/apps/SystemDefaultsApp.tsx +845 -0
package/src/components/apps/ThirdPartyApp.tsx +428 -0
package/src/components/apps/TokenApp.tsx +319 -0
package/src/components/apps/TransactionsApp.tsx +438 -0
package/src/components/apps/WalletDetailApp.tsx +1505 -0
package/src/components/apps/index.ts +13 -0
package/src/components/design-system/Button.tsx +88 -0
package/src/components/design-system/ChainIndicator.tsx +65 -0
package/src/components/design-system/ChainSelector.tsx +147 -0
package/src/components/design-system/ConfirmationModal.tsx +107 -0
package/src/components/design-system/ConfirmationPopover.tsx +81 -0
package/src/components/design-system/DownloadButton.tsx +149 -0
package/src/components/design-system/Drawer.tsx +133 -0
package/src/components/design-system/FilterDropdown.tsx +183 -0
package/src/components/design-system/ItemPicker.tsx +157 -0
package/src/components/design-system/Modal.tsx +296 -0
package/src/components/design-system/Popover.tsx +142 -0
package/src/components/design-system/TextInput.tsx +85 -0
package/src/components/design-system/Toggle.tsx +65 -0
package/src/components/design-system/TyvekCollapsibleSection.tsx +55 -0
package/src/components/design-system/index.ts +14 -0
package/src/components/docs/ClientSideMarkdown.tsx +51 -0
package/src/components/docs/DocsSearchBar.tsx +118 -0
package/src/components/docs/DocsThemeToggle.tsx +38 -0
package/src/components/docs/PersistentDocGroup.tsx +91 -0
package/src/components/docs/ShareUrlButton.tsx +33 -0
package/src/components/docs/SidebarScrollMemory.tsx +56 -0
package/src/components/health/CredentialHealthDashboard.tsx +214 -0
package/src/components/icons/ChainIcons.tsx +72 -0
package/src/components/layout/AppStoreDrawer.tsx +369 -0
package/src/components/layout/ContentArea.tsx +21 -0
package/src/components/layout/CreateViewModal.tsx +88 -0
package/src/components/layout/LeftRail.tsx +114 -0
package/src/components/layout/TabBar.tsx +284 -0
package/src/components/layout/WalletSidebar.tsx +1030 -0
package/src/components/layout/index.ts +6 -0
package/src/components/marketing/AuraMaxxSpecOverlay.tsx +653 -0
package/src/components/marketing/DeviceMorphExperience.tsx +216 -0
package/src/components/vault/ApiKeysConsole.tsx +1272 -0
package/src/components/vault/AuditConsole.tsx +600 -0
package/src/components/vault/CredentialDetail.tsx +625 -0
package/src/components/vault/CredentialEmpty.tsx +55 -0
package/src/components/vault/CredentialField.tsx +583 -0
package/src/components/vault/CredentialForm.tsx +1484 -0
package/src/components/vault/CredentialList.tsx +265 -0
package/src/components/vault/CredentialRow.tsx +130 -0
package/src/components/vault/CredentialShareModal.tsx +273 -0
package/src/components/vault/CredentialVault.tsx +1662 -0
package/src/components/vault/CredentialWalletWidget.tsx +103 -0
package/src/components/vault/DocsConsole.tsx +113 -0
package/src/components/vault/ImportCredentialsModal.tsx +578 -0
package/src/components/vault/LargeTypeModal.tsx +88 -0
package/src/components/vault/PasswordGenerator.tsx +232 -0
package/src/components/vault/TOTPDisplay.tsx +108 -0
package/src/components/vault/TotpSetupPanel.tsx +198 -0
package/src/components/vault/VaultSidebar.tsx +881 -0
package/src/components/vault/credentialFormName.ts +91 -0
package/src/components/vault/hooks/useVaultKeyboardShortcuts.ts +69 -0
package/src/components/vault/types.ts +56 -0
package/src/context/AuthContext.tsx +365 -0
package/src/context/PriceContext.tsx +113 -0
package/src/context/ThemeContext.tsx +164 -0
package/src/context/WebSocketContext.tsx +269 -0
package/src/context/WorkspaceContext.tsx +668 -0
package/src/hooks/index.ts +4 -0
package/src/hooks/useAgentActions.ts +552 -0
package/src/hooks/useBalance.ts +103 -0
package/src/hooks/useBalances.ts +129 -0
package/src/hooks/useTheme.ts +156 -0
package/src/instrumentation.ts +12 -0
package/src/lib/api-docs.ts +154 -0
package/src/lib/api.ts +474 -0
package/src/lib/app-loader.ts +148 -0
package/src/lib/app-registry.ts +178 -0
package/src/lib/app-sdk.ts +157 -0
package/src/lib/audit-console-adapter.ts +151 -0
package/src/lib/auth-client.ts +75 -0
package/src/lib/config.ts +74 -0
package/src/lib/credential-field-schema.ts +11 -0
package/src/lib/crypto.ts +112 -0
package/src/lib/db.ts +21 -0
package/src/lib/docs.ts +544 -0
package/src/lib/events.ts +363 -0
package/src/lib/pino.ts +24 -0
package/src/lib/theme-handlers.ts +168 -0
package/src/lib/theme.ts +351 -0
package/src/lib/tokenData.ts +378 -0
package/src/lib/totp-import.ts +57 -0
package/src/lib/vault-crypto.ts +129 -0
package/src/lib/view-registry.ts +57 -0
package/src/lib/websocket-server.ts +302 -0
package/src/lib/websocket-setup.ts +79 -0
package/src/lib/wordlist.ts +2050 -0
package/src/lib/workspace-handlers.ts +285 -0
package/start.sh +170 -0
package/tailwind.config.ts +99 -0
package/tsconfig.json +42 -0

package/server/lib/transactions.ts ADDED Viewed

@@ -0,0 +1,123 @@
+/**
+ * Shared transaction recording and asset tracking helpers.
+ * Eliminates duplicated log+transaction+event boilerplate across route files.
+ */
+import { prisma } from './db';
+import { events } from './events';
+import { upsertTokenMetadata } from './token-metadata';
+import { normalizeAddress } from './address';
+/**
+ * Record a transaction: creates a Log entry, a Transaction record,
+ * and emits a txCreated WebSocket event.
+ */
+export async function recordTransaction(params: {
+  walletAddress: string;
+  txHash: string;
+  type: string;
+  status?: string;
+  amount?: string;
+  tokenAddress?: string;
+  tokenAmount?: string;
+  from: string;
+  to?: string;
+  description: string;
+  chain: string;
+  logTitle?: string;
+}): Promise<{ id: string }> {
+  await prisma.log.create({
+    data: {
+      walletAddress: params.walletAddress,
+      title: params.logTitle || `${params.type} Transaction`,
+      description: params.description,
+      txHash: params.txHash,
+    },
+  });
+  const norm = (addr: string) => normalizeAddress(addr, params.chain);
+  const tx = await prisma.transaction.create({
+    data: {
+      walletAddress: norm(params.from),
+      txHash: params.txHash,
+      type: params.type,
+      status: params.status || 'confirmed',
+      amount: params.amount,
+      tokenAddress: params.tokenAddress ? norm(params.tokenAddress) : undefined,
+      tokenAmount: params.tokenAmount,
+      from: norm(params.from),
+      to: params.to ? norm(params.to) : undefined,
+      description: params.description,
+      chain: params.chain,
+      executedAt: new Date(),
+    },
+  });
+  events.txCreated({
+    walletAddress: norm(params.from),
+    id: tx.id,
+    type: params.type,
+    txHash: params.txHash,
+    amount: params.amount,
+    tokenAddress: params.tokenAddress ? norm(params.tokenAddress) : undefined,
+    tokenAmount: params.tokenAmount,
+    description: params.description,
+  });
+  return tx;
+}
+/**
+ * Auto-track a token after a successful send/swap/launch:
+ * upserts TrackedAsset, emits asset:changed event, and kicks off metadata lookup.
+ */
+export async function autoTrackToken(params: {
+  walletAddress: string;
+  tokenAddress: string;
+  chain: string;
+  poolAddress?: string;
+  poolVersion?: string;
+  symbol?: string;
+  name?: string;
+}): Promise<void> {
+  const wallet = params.walletAddress.toLowerCase();
+  const token = params.tokenAddress.toLowerCase();
+  await prisma.trackedAsset.upsert({
+    where: {
+      walletAddress_tokenAddress_chain: {
+        walletAddress: wallet,
+        tokenAddress: token,
+        chain: params.chain,
+      },
+    },
+    create: {
+      walletAddress: wallet,
+      tokenAddress: token,
+      chain: params.chain,
+      ...(params.poolAddress && { poolAddress: params.poolAddress }),
+      ...(params.poolVersion && { poolVersion: params.poolVersion }),
+    },
+    update: {
+      updatedAt: new Date(),
+      ...(params.poolAddress && { poolAddress: params.poolAddress }),
+      ...(params.poolVersion && { poolVersion: params.poolVersion }),
+    },
+  });
+  events.assetChanged({
+    walletAddress: wallet,
+    tokenAddress: token,
+    ...(params.poolAddress && { poolAddress: params.poolAddress }),
+    ...(params.poolVersion && { poolVersion: params.poolVersion }),
+    ...(params.symbol && { symbol: params.symbol }),
+    ...(params.name && { name: params.name }),
+  });
+  upsertTokenMetadata(
+    token,
+    params.chain,
+    params.symbol ? { symbol: params.symbol, name: params.name } : undefined,
+  );
+}

package/server/lib/transport.ts ADDED Viewed

@@ -0,0 +1,84 @@
+/**
+ * Transport Security - Encrypted password transport for unlock/setup
+ *
+ * Generates an ephemeral RSA keypair on server startup. Frontend fetches
+ * the public key via /auth/connect and encrypts passwords with RSA-OAEP
+ * before sending.
+ *
+ * Security properties:
+ * - RSA private key never leaves server memory
+ * - Keypair regenerates on restart (aligns with existing security model)
+ * - RSA-OAEP provides semantic security (same plaintext → different ciphertext)
+ */
+import { generateKeyPairSync, privateDecrypt, constants } from 'crypto';
+import { HttpError } from './error';
+// Ephemeral RSA keypair - regenerates every restart
+// This aligns with the security model: server restart = forced re-authentication
+const { publicKey, privateKey } = generateKeyPairSync('rsa', {
+  modulusLength: 2048,
+  publicKeyEncoding: { type: 'spki', format: 'pem' },
+  privateKeyEncoding: { type: 'pkcs8', format: 'pem' }
+});
+console.log('[Transport] RSA keypair generated for encrypted password transport');
+/**
+ * Get the server's public key (PEM format)
+ * Frontend uses this to encrypt passwords before sending
+ */
+export function getPublicKey(): string {
+  return publicKey;
+}
+/**
+ * Get the server's private key (PEM format) — for test use only.
+ * In production this key never leaves the process; tests need it
+ * to decrypt tokens encrypted with the matching public key.
+ */
+export function getPrivateKey(): string {
+  return privateKey;
+}
+/**
+ * Decrypt a password that was encrypted with our public key
+ * @param encrypted Base64-encoded RSA-OAEP encrypted password
+ * @returns Decrypted plaintext password
+ * @throws Error if decryption fails (wrong key, corrupted data, etc.)
+ */
+export function decryptPassword(encrypted: string): string {
+  const buffer = Buffer.from(encrypted, 'base64');
+  const decrypted = privateDecrypt(
+    {
+      key: privateKey,
+      padding: constants.RSA_PKCS1_OAEP_PADDING,
+      oaepHash: 'sha256'
+    },
+    buffer
+  );
+  return decrypted.toString('utf8');
+}
+/**
+ * Decrypt and validate an encrypted password from a request body.
+ * Throws HttpError with appropriate status codes on failure.
+ */
+export function parseEncryptedPassword(encrypted: unknown): string {
+  if (!encrypted || typeof encrypted !== 'string') {
+    throw new HttpError(400, 'Encrypted password is required');
+  }
+  let password: string;
+  try {
+    password = decryptPassword(encrypted);
+  } catch {
+    throw new HttpError(400, 'Failed to decrypt password. Server may have restarted - refetch public key.');
+  }
+  if (!password) {
+    throw new HttpError(400, 'Password is required');
+  }
+  if (password.length < 8) {
+    throw new HttpError(400, 'Password must be at least 8 characters');
+  }
+  return password;
+}

package/server/lib/txhistory/decoder.ts ADDED Viewed

@@ -0,0 +1,262 @@
+/**
+ * Log Decoder
+ * ===========
+ * Decodes raw EVM logs into structured DecodedEvent objects.
+ * Handles Transfer (ERC-20/721), Swap (V2/V3/V4), WETH Deposit/Withdrawal, Approval.
+ */
+import { decodeAbiParameters } from 'viem';
+import { EVENT_SIGNATURES, TOPIC_TO_EVENT } from './signatures';
+// --- Types ---
+export interface DecodedEvent {
+  type: string; // 'transfer' | 'approval' | 'swap_v2' | 'swap_v3' | 'swap_v4' | 'weth_deposit' | 'weth_withdrawal' | 'unknown'
+  txHash: string;
+  logIndex: number;
+  blockNumber: bigint;
+  contractAddress: string;
+  params: Record<string, unknown>;
+}
+export interface RawLog {
+  address: string;
+  topics: string[];
+  data: string;
+  transactionHash: string;
+  logIndex: number;
+  blockNumber: bigint;
+}
+// --- Helpers ---
+/** Extract a 20-byte address from a 32-byte topic */
+export function extractAddress(topic: string): string {
+  return '0x' + topic.slice(26).toLowerCase();
+}
+// --- Decoder ---
+function decodeTransfer(log: RawLog): DecodedEvent {
+  const isERC721 = log.topics.length === 4; // ERC-721: 3 indexed (from, to, tokenId)
+  const from = extractAddress(log.topics[1]);
+  const to = extractAddress(log.topics[2]);
+  if (isERC721) {
+    const tokenId = BigInt(log.topics[3]);
+    return {
+      type: 'transfer_nft',
+      txHash: log.transactionHash,
+      logIndex: log.logIndex,
+      blockNumber: log.blockNumber,
+      contractAddress: log.address.toLowerCase(),
+      params: { from, to, tokenId },
+    };
+  }
+  // ERC-20: 2 indexed (from, to), 1 non-indexed (amount)
+  const [amount] = decodeAbiParameters(
+    [{ name: 'amount', type: 'uint256' }],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'transfer',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { from, to, amount },
+  };
+}
+function decodeApproval(log: RawLog): DecodedEvent {
+  const owner = extractAddress(log.topics[1]);
+  const spender = extractAddress(log.topics[2]);
+  // ERC-721 Approval has tokenId indexed (4 topics, no/empty data)
+  if (log.topics.length === 4) {
+    const tokenId = BigInt(log.topics[3]);
+    return {
+      type: 'approval_nft',
+      txHash: log.transactionHash,
+      logIndex: log.logIndex,
+      blockNumber: log.blockNumber,
+      contractAddress: log.address.toLowerCase(),
+      params: { owner, spender, tokenId },
+    };
+  }
+  // ERC-20 Approval: amount in data
+  const [amount] = decodeAbiParameters(
+    [{ name: 'amount', type: 'uint256' }],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'approval',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { owner, spender, amount },
+  };
+}
+function decodeSwapV2(log: RawLog): DecodedEvent {
+  const sender = extractAddress(log.topics[1]);
+  const to = extractAddress(log.topics[2]);
+  const [amount0In, amount1In, amount0Out, amount1Out] = decodeAbiParameters(
+    [
+      { name: 'amount0In', type: 'uint256' },
+      { name: 'amount1In', type: 'uint256' },
+      { name: 'amount0Out', type: 'uint256' },
+      { name: 'amount1Out', type: 'uint256' },
+    ],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'swap_v2',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { sender, to, amount0In, amount1In, amount0Out, amount1Out },
+  };
+}
+function decodeSwapV3(log: RawLog): DecodedEvent {
+  const sender = extractAddress(log.topics[1]);
+  const recipient = extractAddress(log.topics[2]);
+  const [amount0, amount1, sqrtPriceX96, liquidity, tick] = decodeAbiParameters(
+    [
+      { name: 'amount0', type: 'int256' },
+      { name: 'amount1', type: 'int256' },
+      { name: 'sqrtPriceX96', type: 'uint160' },
+      { name: 'liquidity', type: 'uint128' },
+      { name: 'tick', type: 'int24' },
+    ],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'swap_v3',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { sender, recipient, amount0, amount1, sqrtPriceX96, liquidity, tick },
+  };
+}
+function decodeSwapV4(log: RawLog): DecodedEvent {
+  const poolId = log.topics[1];
+  const sender = extractAddress(log.topics[2]);
+  const [amount0, amount1, sqrtPriceX96, liquidity, tick, fee] = decodeAbiParameters(
+    [
+      { name: 'amount0', type: 'int128' },
+      { name: 'amount1', type: 'int128' },
+      { name: 'sqrtPriceX96', type: 'uint160' },
+      { name: 'liquidity', type: 'uint128' },
+      { name: 'tick', type: 'int24' },
+      { name: 'fee', type: 'uint24' },
+    ],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'swap_v4',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { poolId, sender, amount0, amount1, sqrtPriceX96, liquidity, tick, fee },
+  };
+}
+function decodeWethDeposit(log: RawLog): DecodedEvent {
+  const dst = extractAddress(log.topics[1]);
+  const [wad] = decodeAbiParameters(
+    [{ name: 'wad', type: 'uint256' }],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'weth_deposit',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { dst, wad },
+  };
+}
+function decodeWethWithdrawal(log: RawLog): DecodedEvent {
+  const src = extractAddress(log.topics[1]);
+  const [wad] = decodeAbiParameters(
+    [{ name: 'wad', type: 'uint256' }],
+    log.data as `0x${string}`,
+  );
+  return {
+    type: 'weth_withdrawal',
+    txHash: log.transactionHash,
+    logIndex: log.logIndex,
+    blockNumber: log.blockNumber,
+    contractAddress: log.address.toLowerCase(),
+    params: { src, wad },
+  };
+}
+/** Decode a batch of raw logs into structured events */
+export function decodeLogs(logs: RawLog[]): DecodedEvent[] {
+  const decoded: DecodedEvent[] = [];
+  for (const log of logs) {
+    if (!log.topics || log.topics.length === 0) continue;
+    const topic0 = log.topics[0];
+    const eventKey = TOPIC_TO_EVENT[topic0];
+    try {
+      switch (eventKey) {
+        case 'TRANSFER':
+          decoded.push(decodeTransfer(log));
+          break;
+        case 'APPROVAL':
+          decoded.push(decodeApproval(log));
+          break;
+        case 'SWAP_V2':
+          decoded.push(decodeSwapV2(log));
+          break;
+        case 'SWAP_V3':
+          decoded.push(decodeSwapV3(log));
+          break;
+        case 'SWAP_V4':
+          decoded.push(decodeSwapV4(log));
+          break;
+        case 'WETH_DEPOSIT':
+          decoded.push(decodeWethDeposit(log));
+          break;
+        case 'WETH_WITHDRAWAL':
+          decoded.push(decodeWethWithdrawal(log));
+          break;
+        default:
+          decoded.push({
+            type: 'unknown',
+            txHash: log.transactionHash,
+            logIndex: log.logIndex,
+            blockNumber: log.blockNumber,
+            contractAddress: log.address.toLowerCase(),
+            params: { topic0 },
+          });
+      }
+    } catch {
+      // Malformed log data — skip
+      decoded.push({
+        type: 'unknown',
+        txHash: log.transactionHash,
+        logIndex: log.logIndex,
+        blockNumber: log.blockNumber,
+        contractAddress: log.address.toLowerCase(),
+        params: { topic0, error: 'decode_failed' },
+      });
+    }
+  }
+  return decoded;
+}